Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

Apache’s Fix for Log4Shell Can Lead to DoS Attacks

Vulnerabilities

Cerberus last edited by

Not only is the jaw-dropping flaw in the Apache Log4j logging library ubiquitous; Apache’s blanket of a quickly baked patch for Log4Shell also has holes.

https://threatpost.com/apache-patch-log4shell-log4j-dos-attacks/177064/
DISCLAIMER: Please note, that this article is not the work of (or owned by) Hostrisk.com. Attribution and copyright of this article is retained in full by the original author referred to in the Source link above
1 Reply Last reply
Reply Quote 0

Suggested Topics

Apple Fixes 2 Zero-Day Security Bugs, One Exploited in the Wild
Vulnerabilities • vulnerabilities • • Cerberus

1

0
Votes

1
Posts

1
Views

iOS 15.3 & iPadOS 15.3 fix the Safari browser flaw that could have spilled users’ browsing data, plus a zero day IOMobileFrameBuffer bug exploited in the wild.

https://threatpost.com/apple-zero-day-security-exploited/178040/
Unpatched Linux Marketplace Bugs Allow Wormable Attacks, Drive-By RCE
Vulnerabilities • • Cerberus

1

0
Votes

1
Posts

14
Views

A pair of zero-days affecting Pling-based marketplaces could allow for some ugly attacks on unsuspecting Linux enthusiasts – with no patches in sight.

https://threatpost.com/unpatched-linux-marketplace-bugs-rce/167155/
Critical MQTT-Related Bugs Open Industrial Networks to RCE Via Moxa
Vulnerabilities • vulnerabilities • • Cerberus

1

0
Votes

1
Posts

5
Views

A collection of five security vulnerabilities with a collective CVSS score of 10 out of 10 threaten critical infrastructure environments that use Moxa MXview.

https://threatpost.com/critical-mqtt-bugs-industrial-rce-moxa/178399/

1 / 1

Apache’s Fix for Log4Shell Can Lead to DoS Attacks

Suggested Topics

Apple Fixes 2 Zero-Day Security Bugs, One Exploited in the Wild Vulnerabilities • vulnerabilities • • Cerberus

Unpatched Linux Marketplace Bugs Allow Wormable Attacks, Drive-By RCE Vulnerabilities • • Cerberus

Critical MQTT-Related Bugs Open Industrial Networks to RCE Via Moxa Vulnerabilities • vulnerabilities • • Cerberus

Apple Fixes 2 Zero-Day Security Bugs, One Exploited in the Wild
Vulnerabilities • vulnerabilities • • Cerberus

Unpatched Linux Marketplace Bugs Allow Wormable Attacks, Drive-By RCE
Vulnerabilities • • Cerberus

Critical MQTT-Related Bugs Open Industrial Networks to RCE Via Moxa
Vulnerabilities • vulnerabilities • • Cerberus